- What is CWE-476?
- The product dereferences a pointer that it expects to be valid but is NULL.
- What CVEs are caused by CWE-476?
- 2,049 recorded CVEs are attributed to CWE-476, including CVE-2026-21525, CVE-2024-55193, CVE-2024-40493. 1 are listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
- Is CWE-476 part of the OWASP Top 10?
- CWE-476 maps to OWASP Top Ten 2004: Denial of Service (A9) in the OWASP security taxonomy.
- How do you prevent CWE-476?
- For any pointers that could have been modified or provided from a function that can return NULL, check the pointer for NULL before use. When working with a multithreaded or otherwise asynchronous environment, ensure that proper locking APIs are used to lock before the check, and unlock when it has finished [REF-1484].
- How is CWE-476 detected?
- Automated Dynamic Analysis: This weakness can be detected using dynamic tools and techniques that interact with the software using large test suites with many diverse inputs, such as fuzz testing (fuzzing), robustness testing, and fault injection. The software's operation may slow down, but it should not become unstable, crash, or generate incorrect results.
- What are the consequences of CWE-476?
- Exploiting CWE-476 can lead to: DoS: Crash, Exit, or Restart, Execute Unauthorized Code or Commands, Read Memory, Modify Memory.
- Is CWE-476 actively exploited?
- Yes. 1 CWE-476 vulnerabilities are in CISA's KEV catalog of actively exploited flaws, out of 2,049 recorded CVEs.